Support User Manuals

Cisco Systems CL-28826-01 Security Camera User Manual

Open as PDF

of 2616

6-42

User Guide for Cisco Security Manager 4.4

OL-28826-01

Chapter 6 Managing Policy Objects

Understanding AAA Server and Server Group Objects

Field Reference

Table 6-14 AAA Server Dialog Box—HTTP-Form Settings

Element Description

Start URL The URL from which the WebVPN server of the security appliance

should retrieve an optional pre-login cookie. The maximum URL

length is 1024 characters.

The authenticating web server might execute a pre-login sequence by

sending a Set-Cookie header along with the login page content. The

URL in this field defines the location from which the cookie is

retrieved.

Note The actual login sequence starts after the pre-login cookie

sequence.

Action URI The Uniform Resource Identifier (URI) that defines the location and

name of the authentication program on the web server to which the

security appliance sends HTTP POST requests for single sign-on (SSO)

authentication.

The maximum length of the action URI is 2048 characters.

Tip You can discover the action URI on the authenticating web

server by connecting to the web server’s login page directly

with a browser. The URL of the login web page displayed in

your browser is the action URI for the authenticating web

server.

Username Parameter The name of the username parameter included in HTTP POST requests

for SSO authentication. The maximum length is 128 characters.

At login, the user enters the actual name value, which is entered into the

HTTP POST request and passed on to the authenticating web server.

Password Parameter The name of the password parameter included in HTTP POST requests

for SSO authentication. The maximum length is 128 characters.

At login, the user enters the actual password value, which is entered

into the HTTP POST request and passed on to the authenticating web

server.

Hidden Values The hidden parameters included in HTTP POST requests for SSO

authentication. They are referred to as hidden parameters because,

unlike the username and password, they are not visible to the user.

The maximum length of the hidden parameters is 2048 characters.

Tip You can discover the hidden parameters that the authenticating

web server expects in POST requests by using an HTTP header

analyzer on a form received from the web server.

Authentication Cookie Name The name of the authentication cookie used for SSO by the security

appliance. The maximum length is 128 characters.

If SSO authentication succeeds, the authenticating web server passes

this authentication cookie to the client browser. The client browser then

authenticates to other web servers in the SSO domain by presenting this

cookie.

previous next